These danger actors were being then able to steal AWS session tokens, the short-term keys that let you request short term credentials to the employer??s AWS account. By hijacking Energetic tokens, the attackers have been capable to bypass MFA controls and attain usage of Harmless Wallet ??s AWS